[VOIPSEC] Secure Real-time Transport Protocol (SRTP)

Lee Dilkie lee_dilkie at mitel.com
Wed Mar 23 14:59:43 CST 2005 

I'm not surprised by that reaction. Networking companies tend to offer 
network h/w solutions for security for obvious financial reasons.

I know Mitel, which is not a networking company but has a long history 
of traditional telephony product development, has implemented SRTP with 
a key exchange over SSL on their VoIP product line. It was first 
deployed with their teleworker product about the time the first SRTP 
draft came out (2 years ago or so). It will be a standard offering on 
LAN based deployments later this year.

regards,

Lee Dilkie

Yes, I do work for Mitel, and I did develop the teleworker solutions and 
SRTP implementation. I'm not speaking on behalf of Mitel as I just push 
one's and zero's around, I'm not in marketing or sales and I haven't 
vetted my comment with them. I'm also not sure if highlighting a 
specific company's products is kosher for this list so feel free to 
upside me in the head.

Tim Mehmet wrote:

>I asked Nortel directly in a face to face meeting about their product,
>they apparently do not see any need for it and have no plans to do it.
>
>Considering that I had to explain the obvious benefits to them I am not
>certain about the response, i'm sure they'll reconsider if enough people
>press them.
>
>i got the distinct impression that offering SRTP would negate the need
>to buy other Nortel products to help secure their solution and thus they
>showed no desire to provide SRTP.
>
>Nortel insist that the security be off loaded to the network and other
>items and that we should not rely on the vendor systems to offer
>security alone, this is fair, but having insecure endpoints and insecure
>protocols kinda negates what we do, specially over public IP.
>
>
>
>Tim Mehmet
>
>
>
>
>
>On Wed, 2005-03-23 at 17:09, Ian.Cuthbertson at nokia.com wrote:
>  
>
>>Hi,
>>
>>Does anyone have a take on how widely deployed SRTP is in the real
>>world? Are all vendors offing solutions which include this (gateway,
>>handset etc)? Which key exchange methods do they support?
>>
>>Thanks, Ian
>>
>>
>>
>>_______________________________________________
>>Voipsec mailing list
>>Voipsec at voipsa.org
>>http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>>    
>>
>
>
>_______________________________________________
>Voipsec mailing list
>Voipsec at voipsa.org
>http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>  
>

More information about the Voipsec mailing list